Collecting Cyber-News from over 60 sources

Tag: macOS

Fake macOS help sites push Shamos infostealer via ClickFix technique

Aug 25, 2025 2:54 PM

Tags: crowdstrike, macOS

Criminals are taking advantage of macOS users’ need to resolve technical issues to get them to infect their machines with the Shamos infostealer, Crowdstrike researchers … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/08/25/fake-macos-help-sites-push-shamos-infostealer-via-clickfix-technique/
New macOS Installer Boasts Lightning-Fast Data Theft, Marketed on Dark Web

Aug 25, 2025 11:55 AM

Tags: cyber, dark-web, data, macOS, malware, service, theft, threat

A novel macOS infostealer malware, designated as Mac.c, has emerged as a formidable contender in the underground malware-as-a-service (MaaS) ecosystem. Developed openly by a threat actor operating under the pseudonym >>mentalpositive,
Kopia: Open-source encrypted backup tool for Windows, macOS, Linux

Aug 25, 2025 7:54 AM

Tags: backup, cloud, linux, macOS, network, open-source, tool, windows

Kopia is an open-source backup and restore tool that lets you create encrypted snapshots of your files and store them in cloud storage, on a remote server, on network-attached … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/08/25/kopia-open-source-encrypted-backup-tool-windows-macos-linux/
Over 300 entities hit by a variant of Atomic macOS Stealer in recent campaign

Aug 23, 2025 9:54 AM

Tags: crowdstrike, macOS, malware

Over 300 entities hit by the Atomic macOS Stealer via malvertising campaign between June and August, CrowdStrike warns. From June and August, over 300 entities were hit by a variant of the Atomic macOS Stealer (AMOS) called SHAMOS, reports CrowdStrike. The Atomic macOS Stealer lets operators steal diverse information from infected machines. This includes Keychain…
COOKIE SPIDER’s Malvertising Drops New SHAMOS macOS Malware

Aug 23, 2025 1:55 AM

Tags: crowdstrike, macOS, malware

CrowdStrike reports COOKIE SPIDER using malvertising to spread SHAMOS macOS malware (a new variant of AMOS infostealer), stealing… First seen on hackread.com Jump to article: hackread.com/cookie-spider-malvertising-new-shamos-macos-malware/
ClickFix Exploit Emerges: Microsoft Flags Cross-Platform Attacks Targeting Windows and macOS

Aug 22, 2025 3:54 PM

Tags: attack, cyber, exploit, intelligence, macOS, malicious, microsoft, social-engineering, threat, windows

Microsoft Threat Intelligence has spotlighted the escalating adoption of the ClickFix social engineering technique, a sophisticated method that manipulates users into executing malicious commands on their devices, bypassing traditional automated security defenses. Observed since early 2024, this tactic has targeted thousands of enterprise and end-user systems daily, delivering payloads such as Lumma Stealer infostealers, remote…
CISA Warns of Actively Exploited 0-Day Vulnerability in Apple iOS, iPadOS, and macOS

Aug 22, 2025 2:54 PM

Tags: apple, cisa, cve, cyber, cybersecurity, exploit, framework, infrastructure, macOS, risk, vulnerability, zero-day

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about a critical zero-day vulnerability affecting Apple iOS, iPadOS, and macOS systems that is being actively exploited in the wild. CVE-2025-43300, an out-of-bounds write vulnerability in Apple’s Image I/O framework, poses significant security risks to millions of users across Apple’s ecosystem. Critical Vulnerability…
Apple Releases Patch for Likely Exploited Zero-Day Vulnerability

Aug 22, 2025 11:54 AM

Tags: apple, exploit, iphone, macOS, update, vulnerability, zero-day

All Apple users are encouraged to update their iPhones, iPads and macOS devices First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/apple-patch-likely-exploited-zero/
Apple discloses actively exploited zero-day affecting iOS, iPadOS and macOS

Aug 22, 2025 12:54 AM

Tags: apple, attack, exploit, macOS, zero-day

The defect, which affects the company’s most popular devices, has been exploited in an “extremely sophisticated attack against specific targeted individuals,” Apple said. First seen on cyberscoop.com Jump to article: cyberscoop.com/apple-zero-day-ios-macos-ipados-august-2025/
Apple addressed the seventh actively exploited zero-day

Aug 21, 2025 7:54 PM

Tags: apple, cve, exploit, framework, macOS, vulnerability, zero-day

Apple addressed a vulnerability impacting iOS, iPadOS, and macOS that it is under active exploitation in the wild. Apple addressed an actively exploited zero-day, tracked as CVE-2025-43300, in iOS, iPadOS, and macOS. The vulnerability is zero-day out-of-bounds write issue that resides in the ImageIO framework, an attacker could exploit it to cause memory corruption when processing…
New SHAMOS Malware Targets macOS Through Fake Help Sites to Steal Login Credentials

Aug 21, 2025 2:56 PM

Tags: credentials, crowdstrike, crypto, cyber, cybercrime, cybersecurity, data, group, login, macOS, malware, service

Cybersecurity researchers at CrowdStrike identified and thwarted a sophisticated malware campaign deploying SHAMOS, an advanced variant of the Atomic macOS Stealer (AMOS) malware, orchestrated by the cybercriminal group COOKIE SPIDER. Operating under a malware-as-a-service model, COOKIE SPIDER rents out this information stealer to affiliates who target victims to harvest sensitive data, including login credentials, cryptocurrency…
Apple rushes out fix for active zero-day in iOS and macOS

Aug 21, 2025 2:56 PM

Tags: apple, exploit, macOS, zero-day

Another ‘extremely sophisticated’ exploit chewing at Cupertino’s walled garden First seen on theregister.com Jump to article: www.theregister.com/2025/08/21/apple_imageio_exploit/
CVE-2025-43300: Critical Zero-Day Bug in iOS, iPadOS, and macOS

Aug 21, 2025 10:54 AM

Tags: apple, cve, flaw, framework, iphone, macOS, software, update, vulnerability, zero-day

CVE-2025-43300: Vulnerability in Image Handling Framework Apple has released urgent software updates for iPhones, iPads, and Macs after identifying a zero-day security flaw that was already being exploited. The issue, cataloged as CVE-2025-43300, exists in the ImageIO framework and can… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2025-43300-zero-day-apple/
Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

Aug 21, 2025 8:54 AM

Tags: apple, attack, cve, exploit, flaw, framework, macOS, malicious, update, vulnerability, zero-day

Apple has released security updates to address a security flaw impacting iOS, iPadOS, and macOS that it said has come under active exploitation in the wild.The zero-day out-of-bounds write vulnerability, tracked as CVE-2025-43300, resides in the ImageIO framework that could result in memory corruption when processing a malicious image.”Apple is aware of a report that…
ClickFix macOS Malware Targets User Login Credentials

Aug 10, 2025 3:11 PM

Tags: attack, credentials, crypto, cyber, login, macOS, malware, phishing, social-engineering

Security researchers have identified a new malware campaign targeting macOS users through a sophisticated ClickFix technique that combines phishing and social engineering to steal cryptocurrency wallet details, browser credentials, and sensitive personal data. The Odyssey Stealer malware, discovered by X-Labs researchers in August 2025, represents an evolution of earlier ClickFix attacks that previously focused on…
MacOS Under Attack: How Organizations Can Counter Rising Threats

Aug 5, 2025 2:28 PM

Tags: attack, awareness, deep-fake, macOS, threat, training

Not only are attacks against macOS users ramping up, but threat actors have proved to be advanced with deepfake technology. Security awareness training may be the best defense. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/mac-under-attack-how-organizations-can-counter-rising-threats
âš¡ Weekly Recap: VPN 0-Day, Encryption Backdoor, AI Malware, macOS Flaw, ATM Hack & More

Aug 4, 2025 2:28 PM

Tags: ai, backdoor, encryption, flaw, macOS, malware, open-source, threat, tool, vpn, zero-day

Malware isn’t just trying to hide anymore”, it’s trying to belong. We’re seeing code that talks like us, logs like us, even documents itself like a helpful teammate. Some threats now look more like developer tools than exploits. Others borrow trust from open-source platforms, or quietly build themselves out of AI-written snippets. It’s not just…
‘Sploitlight’ Vulnerability: How Hackers Bypassed Apple’s TCC Protections

Aug 2, 2025 12:28 PM

Tags: access, apple, data, data-breach, flaw, hacker, macOS, unauthorized, vulnerability

Unpatched Apple devices remain exposed to Sploitlight, a macOS flaw that allows unauthorized access to private user data despite security measures. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-macos-sploitlight-vulnerability-explained/
Kali Linux can now run in Apple containers on macOS systems

Jul 31, 2025 9:28 PM

Tags: apple, container, cybersecurity, kali, linux, macOS

Cybersecurity professionals and researchers can now launch Kali Linux in a virtualized container on macOS Sequoia using Apple’s new containerization framework. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/kali-linux-can-now-run-in-apple-containers-on-macos-systems/
Proton launches free standalone cross-platform Authenticator app

Jul 31, 2025 5:28 PM

Tags: android, authentication, linux, macOS, mfa, windows

Proton has launched Proton Authenticator, a free standalone two-factor authentication (2FA) application for Windows, macOS, Linux, Android, and iOS. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/proton-launches-free-standalone-cross-platform-authenticator-app/
iOS 18.6 to macOS 15.6: Apple Releases Comprehensive Security Updates

Jul 31, 2025 9:28 AM

Tags: apple, macOS, update, vulnerability

Apple has rolled out a wide-ranging series of Apple security updates and Rapid Security Responses, spanning iOS, iPadOS, macOS, tvOS, watchOS, and visionOS. These carefully coordinated Apple security releases provided vital patches for vulnerabilities affecting millions of devices across its ecosystem. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/new-apple-security-updates/
Apple Patches Multiple Vulnerabilities, Including Safari Vulnerability Abused in Chrome 0-Day Attacks

Jul 30, 2025 3:27 PM

Tags: apple, attack, browser, chrome, cyber, exploit, flaw, macOS, update, vulnerability, zero-day

Apple has released a comprehensive set of security updates across its entire product ecosystem on July 29, 2025, addressing multiple vulnerabilities including a critical Safari flaw that was reportedly exploited in Chrome zero-day attacks. The updates span iOS, iPadOS, macOS, watchOS, tvOS, and visionOS platforms, demonstrating the company’s commitment to maintaining security across all its…
Google patches Gemini CLI tool after prompt injection flaw uncovered

Jul 29, 2025 10:28 PM

Tags: ai, attack, container, docker, exploit, flaw, google, injection, macOS, malicious, open-source, tool, vulnerability

README.md GNU Public License file of the sort that would be part of any open source repo.The researchers then uncovered a combination of smaller weaknesses that could be exploited together to run malicious shell commands without the user’s knowledge. The first weakness is that Gemini CLI sensibly allows users to allowlist frequent commands, for example,…
Apple Introduces Containerization Feature for Seamless Kali Linux Integration on macOS

Jul 29, 2025 2:28 PM

Tags: apple, cyber, kali, linux, macOS, technology

Apple has unveiled a groundbreaking containerization feature that enables seamless integration of Kali Linux on macOS systems, marking a significant advancement in cross-platform development capabilities. Announced during WWDC 2025, this innovative technology brings Linux containerization directly to Apple’s ecosystem, offering developers and security professionals unprecedented flexibility in their workflows. The new containerization feature represents Apple’s…
New macOS Vulnerability Allows Attackers to Steal Private Files by Bypassing TCC

Jul 29, 2025 11:28 AM

Tags: access, apple, control, cyber, data, exploit, framework, intelligence, macOS, microsoft, privacy, threat, vulnerability

Microsoft Threat Intelligence has uncovered a critical macOS vulnerability that enables attackers to bypass Apple’s Transparency, Consent, and Control (TCC) framework, potentially exposing sensitive user data including files protected by privacy controls and information cached by Apple Intelligence. Vulnerability Overview The newly discovered vulnerability, dubbed >>Sploitlight
Microsoft uncovers macOS flaw allowing bypass TCC protections and exposing sensitive data

Jul 29, 2025 5:27 AM

Tags: access, apple, control, data, flaw, framework, intelligence, macOS, microsoft, threat, vulnerability

Microsoft found a macOS flaw letting attackers access private data from protected areas like Downloads and Apple Intelligence caches. Microsoft Threat Intelligence researchers discovered a macOS vulnerability that could allow attackers to steal private data of files normally protected by Transparency, Consent, and Control (TCC). Apple’s Transparency, Consent, and Control framework in macOS is designed…
macOS Sploitlight Flaw Exposes Apple Intelligence-Cached Data to Attackers

Jul 28, 2025 8:27 PM

Tags: access, apple, data, flaw, intelligence, macOS, privacy

macOS flaw dubbed Sploitlight allows attackers to access Apple Intelligence-cached data by abusing Spotlight plugins, bypassing privacy controls. First seen on hackread.com Jump to article: hackread.com/macos-sploitlight-flaw-apple-intelligence-cached-data/
macOS Sploitlight flaw leaks Apple Intelligence data

Jul 28, 2025 8:27 PM

Tags: apple, control, data, flaw, intelligence, leak, macOS, microsoft, vulnerability

Attackers could use a recently patched macOS vulnerability to bypass Transparency, Consent, and Control (TCC) security checks and steal sensitive user information, including Apple Intelligence cached data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/microsoft-macos-sploitlight-flaw-leaks-apple-intelligence-data/
Atomic macOS Stealer Upgraded with Remote Access Backdoor

Jul 28, 2025 2:27 PM

Tags: access, apple, backdoor, cyber, cybersecurity, macOS, malware

The Atomic macOS Stealer (AMOS), a notorious infostealer malware targeting Apple’s macOS ecosystem, has undergone a significant upgrade by incorporating a sophisticated backdoor mechanism that facilitates persistent access and remote command execution on infected systems. This enhancement, detailed in a recent report by Moonlock Lab, a cybersecurity arm of MacPaw, transforms AMOS from a mere…
Supply chain attack compromises npm packages to spread backdoor malware

Jul 25, 2025 5:27 AM

Tags: attack, authentication, backdoor, control, cybercrime, cybersecurity, data, defense, email, linux, macOS, malicious, malware, mfa, phishing, software, supply-chain, threat, tool, update, vulnerability, windows

is npm JavaScript type testing utility with malware that went unnoticed for six hours. The bad news was delivered by maintainer Jordan Harband in a post on Bluesky:”Heads up that v3.3.1 of npmjs.com/is has malware in it, due to another maintainer’s account being hijacked,” he wrote.The infected version was removed by npm admins and v3.3.0…